Secure DECnet
Protocol
Prevent the DECnet
protocol from loading on your system by default. Potential attackers might
exploit this protocol to compromise your system.
Avoid loading the DECnet Protocol module unless it is
absolutely necessary. Binding this protocol to the network stack increases the
attack surface of the host. Unprivileged local processes can cause the system to
dynamically load a protocol handler by using the protocol to open a socket.
- Open the DECnet Protocolfile in a text editor./etc/modprobe.d/modprobe.conf
- Ensure that the lineinstall decnet /bin/falseappears in this file.
- Save the file and close it.